University of Minnesota  Procedure

Obtaining Approval to Accept Payment Cards

Sidebar

Expand all

Sidebar

Table of Contents

TOC placeholder

Questions?

Please use the contact section in the governing policy.

Introduction

Managing a payment card account and protecting cardholder data requires a significant commitment of staff time and funding. Each department needs to ensure that it has managerial, fiscal, and technological expertise to manage a payment card account. Keep in mind that not all requests to establish payment card accounts are approved.

Obtaining Approval to Accept Payment Cards

  1. Department consults with their campus, college, or administrative unit’s Chief Financial Manager or RRC Contact to discuss the business needs for accepting revenue via payment card and the department’s managerial, fiscal, and technological expertise for managing a payment card account.
  2. Department consults with Accounts Receivable Services to discuss business requirements and payment card processing options.
  3. Department reviews pertinent policies, procedures, and standards to ensure it is prepared to meet all requirements. Department needs to comply with the most current versions of these policies and security standards:
    1. Accepting Revenue Via Payment Cards
    2. Entering Into Contracts
    3. Acceptable Use of Information Technology Resources
    4. Data Security Breach
    5. Information Security
    6. Information Security Risk Management
    7. Background Checks and Verifications
    8. Managing University Records and Information
    9. The Payment Card Industry Data Security Standard (PCI DSS)
  4. Department designates a Payment Card Manager for the account. The employee designated as Payment Card Manager must have the authority to take action on internal and/or external recommendations or assessment findings.
  5. Payment Card Manager completes UM 1609: Payment Card Account Form (DOC) and sends to Accounts Receivable Services at [email protected].
  6. Accounts Receivable Services will work with the requesting department, University Information Security, Purchasing Services, and Office of the General Counsel to ensure thorough review of the request.
  7. Accounts Receivable Services will notify the department once the request has been reviewed. Not all requests are approved.

NOTE: Once a request is approved, please allow at least 3-4 weeks for payment card account setup and testing.